Terraform releases
HashiCorp Terraform core releases and blog. New features, breaking changes, security advisories and deprecations - each summarised in plain English and updated continuously.
Tracking 36 Terraform releases · Updated
- HashiCorp Blog blogsecurityinfraengineer ·
Vault and SPIFFE for Workload Identity
HashiCorp Vault can now act as a SPIFFE identity issuer and broker, simplifying workload identity and authorization. This integration defines the role of SPIRE within the workflow. This feature is targeted at engineers and architects managing secure application deployments.
feature - HashiCorp Blog blogaisecurityengineer ·
IBM Vault Radar and Vault for AI security
This article explains how to use IBM Vault Radar for preemptive hygiene and IBM Vault for dynamic runtime security to mitigate autonomous AI exploits. It focuses on the challenges posed by AI vulnerabilities, such as Claude Mythos, and provides solutions for security teams. The information is relevant for security professionals managing AI systems.
announcement - HashiCorp Blog blogaisecurityinfraengineer ·
HashiCorp Boundary Enhances Secure Agentic AI Access
HashiCorp Boundary now supports secure agentic AI deployments at scale. This new capability provides unique identities, just-in-time credentials, explicit delegation, and point-of-use enforcement for auditable control. It is designed for organizations looking to integrate AI agents securely into their infrastructure.
feature - HashiCorp Blog blogsecuritypreviewengineer ·
HashiCorp Vault adds SCIM beta for identity provisioning
HashiCorp Vault 2.0 introduces a beta version of SCIM (System for Cross-domain Identity Management) support. This feature allows organizations to standardize user and group provisioning from external identity platforms directly into Vault. The beta availability means it is ready for testing and early adoption.
feature announcement - HashiCorp Blog blogsecurityinfraengineermedia ·
Vault Transit for Secure Large Artifact and Streaming Workload Encryption
Vault Transit now supports envelope encryption for large artifacts and streaming workloads, allowing secure data protection without sending payloads directly to Vault. This enhancement improves security for data-intensive applications by offloading the encryption process from the sensitive Vault server. The feature is designed for engineers and architects managing secure data pipelines and large-scale processing.
feature - HashiCorp Blog blogaisecuritygovernanceengineer ·
HashiCorp Vault adds native AI agent IAM support
HashiCorp Vault now supports managing agentic IAM, including trusted identities, delegated authorization, and fine-grained controls. This feature allows enterprises to enhance security and management for AI agents interacting with sensitive data. The update is available for use in HashiCorp Vault.
feature - HashiCorp Blog blogsecurity ·
IBM Vault 2.0 Enhances UI and Reporting
IBM Vault 2.0 has been released with significant UI improvements and enhanced reporting capabilities. These updates aim to help users realize value more quickly through in-product guidance and provide greater transparency with improved reporting. The release focuses on enhancing the user experience and data visibility for Vault users.
feature patch - HashiCorp Blog blogsecurityengineer ·
IBM Vault Enterprise 2.0 adds LDAP secrets management
IBM Vault Enterprise 2.0 now supports LDAP secrets management, enabling migration of static roles to a centralized rotation system. This feature offers self-managed flows and automated lifecycle management for secrets. The update is available for all IBM Vault Enterprise 2.0 users.
feature - HashiCorp Blog blogsecurityinfraengineer ·
Boundary and Vault integrate with Windows AD DS for credential security
This article explains the importance of dynamic credentials for infrastructure access and details the integration of HashiCorp Boundary and Vault with Windows Active Directory Domain Services. This integration aims to enhance security by managing RDP connections more effectively. It is relevant for engineers and architects managing Windows environments and security infrastructure.
announcement - HashiCorp Blog blogsecurityinfraengineer ·
Vault Secrets Operator automates Kubernetes secret management
HashiCorp Vault Secrets Operator (VSO) enhances secret delivery for Kubernetes and Red Hat OpenShift, enabling automated, secure lifecycle management at scale for enterprises. This capability is designed to streamline the integration of secrets into containerized applications. The operator focuses on large-scale, automated management of sensitive information.
announcement - HashiCorp Blog blogaisecurity ·
Vault Enterprise adds SPIFFE auth for non-human identities
Vault Enterprise now supports SPIFFE authentication for non-human identities (NHI), simplifying the security of AI agents and other automated workloads. This enhancement extends Vault's capabilities to secure emerging AI-driven systems and their operational components. The feature is available in Vault Enterprise, providing a more robust identity framework for complex agentic architectures.
feature - HashiCorp Blog blogsecurityinfraengineer ·
IBM Vault Enterprise 2.0 automates local account password rotation
IBM Vault Enterprise 2.0 now automates local account password rotation using SSH, replacing shared credentials with unique, audited ones. This enhances security by reducing risk associated with shared passwords. The feature is available now and targets security and infrastructure professionals managing privileged access.
feature - HashiCorp Blog blogsecurityinfra ·
Secure SSH access at scale with Vault and Boundary
HashiCorp has updated its approach to scalable, role-based SSH access using SSH certificates, Vault, and Boundary. This enhancement is designed for modern hybrid and multi-cloud environments. The solution aims to improve security and manageability for SSH access across diverse infrastructures.
feature announcement - HashiCorp Blog blogsecurityinfraengineer ·
Secret detection transforms into measurable risk reduction
Vault Radar helps teams transition from discovering credential sprawl to coordinated remediation efforts. This approach shifts secret detection from a mere finding exercise to a quantifiable risk reduction process. It's particularly relevant for security and engineering teams managing cloud infrastructure secrets. The focus is on actionable insights and workflow integration.
announcement - HashiCorp Blog blogsecurityinfraengineer ·
IBM Vault integrates public CA orchestration
IBM Vault now offers unified orchestration for public Certificate Authority (CA) workflows. This integration helps automate PKI lifecycle management and secure internal operations. It is relevant for teams managing public certificates and seeking to streamline their Public Key Infrastructure (PKI) processes.
feature